Tom Parrott
Tom Parrott
> > Yes but if the init process of the container has been started with an apparmor profile that allows unprivileged namespace creation then the sub-processes should be able to...
Right now it looks like we depend on the apparmor in core22
> For tests we could use VMDK images provided on ubuntu cloud (https://cloud-images.ubuntu.com/releases/22.04/release-20240514). They are a bit bulky (~600MiB), but offer a reliable way to get images without the need...
Are there ubuntu-minimal variants we can use that are smaller?
Converted back to draft based on our chat today. Thanks
Needs a rebase please
> However, we can say that _if server supports `conversion` and instance type is `virtual-machine` skip the filesystem._ As through the lxd-migrate the VM's filesystem is never sent, but we...
> Error is not the last return argument. While this is true, this one feels intuitive as is. Similar to assertions (`str, ok := x.(string)`) Yeah you can add an...
> Another one complains about defers in loops. This seems fine to ignore as the snapshots will have their ro property set back once the migration has finished (or failed).
> And CodeQL is also complaining.. We can ignore these for this PR as they are not new issues and are to do with validation improvements needed in other API...